$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft File: 34071A863A3C6EF2DD36795F45540E2FB68950A0.mft (raw, json) Hash identifier: CA2uQ30ivxN/R2xRXYGPkSwhC3FV/tuL1XzdG12PBdU= Subject key identifier: E9:7A:39:E5:CD:BB:20:E8:D3:70:55:F9:99:E0:48:58:A8:7B:4E:E9 Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 Certificate issuer: /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Certificate serial: 2814159CF7DF3B5561FB5F8F4AF0A07ED976FF25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject info access: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft Manifest number: 0794 Signing time: Mon 20 Oct 2025 11:22:52 +0000 Manifest this update: Mon 20 Oct 2025 11:17:52 +0000 Manifest next update: Tue 21 Oct 2025 13:30:52 +0000 Files and hashes: 1: 323430333a666263303a3a2f33322d3438203d3e2033323538.roa (hash: tXrN0zoKF82QapDtfGgfQ/sKCgpFN3PcfxbF24KevGM=) 2: 3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa (hash: 5rh5xKoFim9+qzXuz9ue2E9gTTOhHmo70qMX7Q8lZTQ=) 3: 3130332e3132352e3233322e302f32322d3234203d3e203433333537.roa (hash: AO++rM3N1jO7O7HYsegCBlM8+c2spUzQgRM1Fitv+rQ=) 4: 34071A863A3C6EF2DD36795F45540E2FB68950A0.crl (hash: CyRIVqSeYxBOVLrd/heFsLYQxh7OTOZcnY7BBCHUph0=) 5: 3130332e3132352e3233322e302f32322d3234203d3e203233393539.roa (hash: VZm+1A419bpjhNHk7oa8SlaXnBnjm4UoiyMj6yzbhMQ=) 6: 323430333a666263303a3a2f33322d3438203d3e203233393539.roa (hash: cDTbMfGHTly+QeOfyQG+o4pg0zroCRCYVzgE6JjA/GY=) 7: 323430333a666263303a613030303a3a2f34382d3438203d3e20323132353132.roa (hash: hJxx3nr/lfwP0kEgV9nZ8LhD9nuKvmRGXnwzZAzg9w0=) 8: 3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa (hash: pZv8WRdNlBV4IKDx6bNv7oBg2N/5UFROImiToIit/aA=) 9: 3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa (hash: cLW/biMRwR7zRrRPFacawZTNPUq9jmMexiFzyeHhVJ4=) 10: 323430333a666263303a363030303a3a2f34382d3438203d3e20323132353132.roa (hash: SPVnXgzc6DdCcPNaKseycoy7ZTTw0qv3w3c7rqopVw0=) 11: 323430333a666263303a613030313a3a2f34382d3438203d3e20323132353132.roa (hash: DNK4vnrgAUMBFTQF62of1cSQgwMSTE8r5u7W1r1aQzI=) 12: 323430333a666263303a3a2f33322d3438203d3e203433333537.roa (hash: lWIr6sYh7jORalo3knn4O8Tkqys/QMzZOqOsz0HK/gg=) 13: 323430333a666263303a613030323a3a2f34382d3438203d3e20323132353132.roa (hash: enaySFUpt7HUACHfd9TuXH57K0gEe6gPHzhcz9XFJXs=) Validation: OK Signature path: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 13:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:14:15:9c:f7:df:3b:55:61:fb:5f:8f:4a:f0:a0:7e:d9:76:ff:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0 Validity Not Before: Oct 20 11:17:52 2025 GMT Not After : Oct 21 13:30:52 2025 GMT Subject: CN=E97A39E5CDBB20E8D37055F999E04858A87B4EE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:be:a2:ce:8f:16:79:d0:6a:05:36:48:bd:7d: 36:4f:02:e7:16:86:6c:81:d4:69:a5:90:81:4a:4b: b1:61:ea:f1:38:7e:81:7c:ab:54:67:d3:2c:ca:10: b4:ff:8d:0b:bd:77:bb:aa:9f:fd:24:9a:11:d1:71: eb:f8:d2:ca:73:a2:73:85:da:d2:7c:ae:f9:fa:d3: f3:c5:1c:20:c4:39:9f:95:61:4f:d1:06:d9:e3:e6: 11:52:b5:ee:ac:dd:45:f0:8f:cd:50:d1:fe:ad:7c: ef:ef:72:a9:3a:c9:1b:1f:a7:dc:6b:30:35:33:f0: 21:be:df:28:00:40:f1:3d:a7:11:7f:05:58:e7:a9: 9b:a7:28:d2:f5:be:4f:43:c0:11:ec:51:3d:39:ed: 68:b5:f7:8b:b7:33:51:47:b1:50:b2:f0:25:dd:ae: cf:ab:7b:39:7a:fe:c6:85:7e:88:2e:70:2b:90:2a: 64:97:94:df:ec:bd:ce:ad:83:d7:67:34:2e:d1:50: c2:b4:6b:c9:c0:15:fe:0a:e9:43:a8:07:65:7e:dd: d8:56:fb:57:8b:49:b4:8d:4a:6b:a3:f4:92:21:f7: 06:54:ed:c1:54:c4:0b:ee:bd:2b:fb:05:8e:67:90: 5c:2f:fc:84:4a:29:9a:5e:d2:d3:81:c9:9f:e1:3e: 57:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7A:39:E5:CD:BB:20:E8:D3:70:55:F9:99:E0:48:58:A8:7B:4E:E9 X509v3 Authority Key Identifier: keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer Subject Information Access: Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c2:ea:e6:5c:04:fc:b2:e5:1d:9e:1c:5a:4f:ee:aa:4b:34: 06:e6:6a:c4:06:a1:d3:78:6b:dc:13:6e:c3:d9:88:35:53:7b: 04:e5:db:c8:47:cb:71:37:2f:a0:ac:66:a6:53:5a:fd:f2:ab: 36:a4:19:fa:8d:6b:e3:1c:5d:6a:b8:e1:2c:36:11:44:ba:e0: c7:60:41:9b:9f:c0:38:ba:86:03:0d:77:65:77:38:06:c5:b6: f3:c2:ce:39:34:89:1e:a1:34:79:b8:e1:55:7d:27:b3:34:83: 0a:96:a6:65:28:92:cd:21:75:20:43:e6:3a:ab:29:1f:09:e4: ee:da:17:4d:e5:c0:b7:31:3c:7f:95:16:05:6d:21:36:fc:29: 57:c9:23:19:40:06:7d:d8:37:39:0f:4b:9d:68:c0:d1:a1:74: 20:bb:be:d3:29:17:bf:92:17:59:9c:13:71:c4:06:d9:1b:e4: 00:ff:de:ce:dc:7a:db:d8:e0:c1:5e:c2:0f:bc:42:8f:f9:d3: 75:75:95:49:66:cd:3c:93:c8:41:37:6a:83:b9:03:e5:0a:31: 5f:26:61:78:2c:e2:01:75:65:1b:62:99:85:aa:91:a1:35:b0: f4:7f:a2:1d:a6:e2:bb:54:48:8c:fa:19:0f:33:a7:57:5b:3e: e9:ac:63:87 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgIUKBQVnPffO1Vh+1+PSvCgftl2/yUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkE2ODMwMDAwMTEwLwYDVQQFEygzNDA3MUE4NjNB M0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2ODk1MEEwMB4XDTI1MTAyMDExMTc1MloX DTI1MTAyMTEzMzA1MlowMzExMC8GA1UEAxMoRTk3QTM5RTVDREJCMjBFOEQzNzA1 NUY5OTlFMDQ4NThBODdCNEVFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANa+os6PFnnQagU2SL19Nk8C5xaGbIHUaaWQgUpLsWHq8Th+gXyrVGfTLMoQ tP+NC713u6qf/SSaEdFx6/jSynOic4Xa0nyu+frT88UcIMQ5n5VhT9EG2ePmEVK1 7qzdRfCPzVDR/q187+9yqTrJGx+n3GswNTPwIb7fKABA8T2nEX8FWOepm6co0vW+ T0PAEexRPTntaLX3i7czUUexULLwJd2uz6t7OXr+xoV+iC5wK5AqZJeU3+y9zq2D 12c0LtFQwrRrycAV/grpQ6gHZX7d2Fb7V4tJtI1Ka6P0kiH3BlTtwVTEC+69K/sF jmeQXC/8hEopml7S04HJn+E+VyUCAwEAAaOCAfEwggHtMB0GA1UdDgQWBBTpejnl zbsg6NNwVfmZ4EhYqHtO6TAfBgNVHSMEGDAWgBQ0BxqGOjxu8t02eV9FVA4vtolQ oDAOBgNVHQ8BAf8EBAMCB4AwXQYDVR0fBFYwVDBSoFCgToZMcnN5bmM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0 MEUyRkI2ODk1MEEwLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJz eW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUy QkI0NjhGN0M3MkZEMUZGMi9OQWNhaGpvOGJ2TGRObmxmUlZRT0w3YUpVS0EuY2Vy MGgGCCsGAQUFBwELBFwwWjBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtpLm93bC5u ZXQvcnJkcC9vd2wvMC8zNDA3MUE4NjNBM0M2RUYyREQzNjc5NUY0NTU0MEUyRkI2 ODk1MEEwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAN BgkqhkiG9w0BAQsFAAOCAQEAa8Lq5lwE/LLlHZ4cWk/uqks0BuZqxAah03hr3BNu w9mINVN7BOXbyEfLcTcvoKxmplNa/fKrNqQZ+o1r4xxdarjhLDYRRLrgx2BBm5/A OLqGAw13ZXc4BsW288LOOTSJHqE0ebjhVX0nszSDCpamZSiSzSF1IEPmOqspHwnk 7toXTeXAtzE8f5UWBW0hNvwpV8kjGUAGfdg3OQ9LnWjA0aF0ILu+0ykXv5IXWZwT ccQG2RvkAP/eztx629jgwV7CD7xCj/nTdXWVSWbNPJPIQTdqg7kD5QoxXyZheCzi AXVlG2KZhaqRoTWw9H+iHabiu1RIjPoZDzOnV1s+6axjhw== -----END CERTIFICATE-----Generated at Mon Oct 20 15:54:21 2025 by rpki-client